CVE-2021-40212

Опубликовано: 15 июн. 2022

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

An exploitable out-of-bounds write vulnerability in PotPlayer 1.7.21523 build 210729 may lead to code execution, information disclosure, and denial of service.

Ссылки

https://a-man-in-the-cookie.blogspot.com
Third Party Advisory
https://a-man-in-the-cookie.blogspot.com/2021/08/PotPlayer-Critical-Memory-Access-Violation-Vulnerability.html
Exploit
Third Party Advisory
https://a-man-in-the-cookie.blogspot.com
Third Party Advisory
https://a-man-in-the-cookie.blogspot.com/2021/08/PotPlayer-Critical-Memory-Access-Violation-Vulnerability.html
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:daum:potplayer:1.7.21523:build_210729:*:*:*:*:*:*

EPSS

Процентиль: 79%

0.01214

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-787

Связанные уязвимости

GHSA-vqxx-xvgv-6cxp